Canonical

Ubuntu Linux

4122 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.1%
  • Veröffentlicht 05.06.2012 22:55:07
  • Zuletzt bearbeitet 16.06.2026 23:36:59

ImageMagick 6.7.5-7 and earlier allows remote attackers to cause a denial of service (infinite loop and hang) via a crafted image whose IFD contains IOP tags that all reference the beginning of the IDF.

  • EPSS 2.36%
  • Veröffentlicht 05.06.2012 22:55:07
  • Zuletzt bearbeitet 16.06.2026 23:37:00

The GetEXIFProperty function in magick/property.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service (crash) via a zero value in the component count of an EXIF XResolution tag in a JPEG file, which triggers an out-of-b...

  • EPSS 2.36%
  • Veröffentlicht 05.06.2012 22:55:07
  • Zuletzt bearbeitet 16.06.2026 23:37:00

The JPEGWarningHandler function in coders/jpeg.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service (memory consumption) via a JPEG image with a crafted sequence of restart markers.

  • EPSS 3.82%
  • Veröffentlicht 05.06.2012 22:55:06
  • Zuletzt bearbeitet 16.06.2026 23:36:58

ImageMagick 6.7.5-7 and earlier allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via crafted offset and count values in the ResolutionUnit tag in the EXIF IFD0 of an image.

  • EPSS 1.21%
  • Veröffentlicht 04.06.2012 20:55:02
  • Zuletzt bearbeitet 16.06.2026 23:38:33

Aptdaemon 0.43 and earlier in Ubuntu 11.04, 11.10, and 12.04 LTS does not authenticate packages when the transaction is not simulated, which allows remote attackers to install arbitrary packages via a man-in-the-middle attack.

  • EPSS 2.12%
  • Veröffentlicht 31.05.2012 17:55:02
  • Zuletzt bearbeitet 16.06.2026 23:38:33

The Apport hook in Update Manager as used by Ubuntu 12.04 LTS, 11.10, and 11.04 uploads certain system state archive files when reporting bugs to Launchpad, which allows remote attackers to read repository credentials by viewing a public bug report.

  • EPSS 2.63%
  • Veröffentlicht 29.05.2012 20:55:08
  • Zuletzt bearbeitet 16.06.2026 23:40:44

Puppet 2.6.x before 2.6.15 and 2.7.x before 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows remote authenticated users with agent SSL keys and file-creation permissions on the puppet master to execute ar...

  • EPSS 0.38%
  • Veröffentlicht 17.05.2012 11:00:36
  • Zuletzt bearbeitet 16.06.2026 23:36:33

Integer overflow in the drm_mode_dirtyfb_ioctl function in drivers/gpu/drm/drm_crtc.c in the Direct Rendering Manager (DRM) subsystem in the Linux kernel before 3.1.5 allows local users to gain privileges or cause a denial of service (memory corrupti...

  • EPSS 0.47%
  • Veröffentlicht 17.05.2012 11:00:36
  • Zuletzt bearbeitet 16.06.2026 23:38:26

The I/O implementation for block devices in the Linux kernel before 2.6.33 does not properly handle the CLONE_IO feature, which allows local users to cause a denial of service (I/O instability) by starting multiple processes that share an I/O context...

Exploit
  • EPSS 7.94%
  • Veröffentlicht 01.02.2012 16:55:01
  • Zuletzt bearbeitet 16.06.2026 23:37:16

Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 do not properly initialize nsChildView data structures, which allows remote attackers to cause a denial of service (memory corr...